CVE-2015-6825

EPSS 0.71%

Published: 9/6/2015Modified: 4/28/2026

Also known as:DEBIAN-CVE-2015-6825

Description

The ff_frame_thread_init function in libavcodec/pthread_frame.c in FFmpeg before 2.7.2 mishandles certain memory-allocation failures, which allows remote attackers to cause a denial of service (invalid pointer access) or possibly have unspecified other impact via a crafted file, as demonstrated by an AVI file.

Affected packages (1)

Debian/ffmpegfrom 0, < 7:2.7.2-1

References (1)

ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2015-6825